Please read for an updated status on RailsCasts:
Learn more or hide this
GitHub User: dewey4iv
In Rails 4 (and 4.1) you still need to use strong parameters and allow the properties in the controller. If you aren't at all worried about security you can just call params.permit! and that should work out just fine for you.